Pinned Repositories
atom
Atom is a novel intermediate representation for applications and a standalone tool that is powered by chen.
atom-tools
Collection of tools for use with AppThreat/atom.
chen
Code Hierarchy Exploration Net (chen)
dep-scan-action
Fully open-source security audit for project dependencies based on known vulnerabilities and advisories. No server required!
joern-lib
Python library for code analysis with CPG and Joern
sast-scan
Fully open-source SAST scanner supporting a range of languages and frameworks. Integrates with major CI pipelines and IDE such as Azure DevOps, Google CloudBuild, VS Code and Visual Studio. No server required!
sast-scan-action
GitHub action for performing SAST scanning using various oss tools such as gitleaks, bandit, findsecbugs etc
threat-db
A graph database for components, vulnerabilities and threats powered by dgraph
vuln-list
Linux upstream vulnerabilities data suitable for dep-scan
vulnerability-db
Vulnerability database and package search for sources such as Linux, OSV, NVD, GitHub and npm. Powered by sqlite, CVE 5.0, purl, and vers.
AppThreat's Repositories
AppThreat/vulnerability-db
Vulnerability database and package search for sources such as Linux, OSV, NVD, GitHub and npm. Powered by sqlite, CVE 5.0, purl, and vers.
AppThreat/atom
Atom is a novel intermediate representation for applications and a standalone tool that is powered by chen.
AppThreat/chen
Code Hierarchy Exploration Net (chen)
AppThreat/joern-lib
Python library for code analysis with CPG and Joern
AppThreat/vuln-list
Linux upstream vulnerabilities data suitable for dep-scan
AppThreat/cpggen
Generate CPG for multiple languages for code and threat analysis
AppThreat/dep-scan-action
Fully open-source security audit for project dependencies based on known vulnerabilities and advisories. No server required!
AppThreat/threat-db
A graph database for components, vulnerabilities and threats powered by dgraph
AppThreat/atom-tools
Collection of tools for use with AppThreat/atom.
AppThreat/atom-samples
Collection of atom, data-flow, and usage slices for appthreat/atom https://github.com/appthreat/atom.
AppThreat/docs
Docs that are published at https://appthreat.io
AppThreat/blint-action
Action to run BLint, the binary linter.
AppThreat/caxa
Package Node.js applications into executable binaries. Forked from leafac/caxa.
AppThreat/cdxgen-docs
Documentation repo for CycloneDX Generator (cdxgen)
AppThreat/rosa
An experiment that looks very promising so far.
AppThreat/.github
AppThreat/base-images
Container base images for AppThreat sponsors and customers.
AppThreat/cdx-hbom
AppThreat/cdx-proto
Runtime library to serialize/deserialize CycloneDX BOM with protocol buffers
AppThreat/cdxgen-samples
CycloneDx/cdxgen snapshot repository.
AppThreat/charts
Helm charts for cloudsec apps
AppThreat/cpg2
AppThreat/cpggen-action
Generate CPG for multiple languages for use with joern
AppThreat/custom-json-diff
A utility to compare json documents containing dynamically-generated fields.
AppThreat/dep-scan-snapshots
Testing snapshots for OWASP-dep-scan/dep-scan.
AppThreat/depscan-testing
AppThreat/node-stream-zip
node.js library for fast reading of large ZIPs
AppThreat/overflowdb2
AppThreat/vdb
Precompiled AppThreat vulnerability database for dep-scan
AppThreat/vuln-list-update
Collects vulnerability data from a range of sources.